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MSTRACT 


In  this  paper  we  review  the  primary  characteristics  of  the 
U.S.  Department  of  Defense  packet  switching  networks  — ARPANET, 
AUTODIN  II,  and  WIN.  Special  requirements  for  dedicated,  defense 
networks  arc  examined.  These  include  privacy  and  security,  pre- 
cedence, survivability,  availability,  and  interoperability  with 
other  networks.  Finally,  we  discuss  some  architectural  concepts 
for  an  all  digital  integrated  voice/data  network  for  defense 
applications  in  the  19S0's. 


1.  INTRODUCTION 


Department  of  Defense  data  communications  systems  have  spe- 
cial performance  requirements  vhich  are  perhaps  more  stringent 
than  commercially  available  sy-  terns.  These  requirements  concern 
survivability,  availability,  security,  precedence,  and  interoper- 
ability with  other  Defense  networks  of  the  US  and  NATO  Allies. 
Because  of  these  special  requirements,  the  Defense  Department  has 
its  own  "common-user"  networks — AUTOVON,  a circuit-switched  voice 
network,  AUTOSEVOCOM,  a secure  voice  network,  and  AUTODIN  I,  a 
s tore-and- forward  message-switched  network,  in  addition  to  these 
common-user  networks,  a number  of  other  special  purpose  Defense 
networks  exist  because  of  special  security  or  capacity  require- 
ments which  the  common-user  networks  are  unable  to  meet. 
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With  packet  switching  emerging  as  an  attractive,  cost  effec- 
tive technology  for  data  communications,  the  Defense  Department 
is  presently  operating  or  developing  a number  of  new  packet- 
switching networks— ARPANET,  AUTODIN  II  and  WIN.  It  is  the  pur- 
pose of  this  paper  to  discuss  some  of  the  features  of  these  net- 
works and  examine  some  of  the  requirements  that  place  special 
demands  on  these  defense  networks. 


2.  SPECIAL  REQUIREMENTS  ON  DEFENSE  DATA  NETWORKS 


Survivability 


Defense  data  networks  must  be  survivable  in  the  event  of 
nuclear  attack.  This  places  special  requirements  on  the  location 
of  switching  centers,  routing  of  transmission  links,  and  protec- 
tion of  satellite  and  radio  links  against  enemy  jamming.  Most 
U.S.  military  switching  centers,  although  located  in  guarded  and 
secure  areas,  are  nevertheless  vulnerable  to  direct  hits.  To 
maintain  connectivity,  such  techniques  as  poly-grid  networks, 
diverse  routing,  and  alternate  forms  of  communications  are  used. 


Privacy  and  Security 

In  US  military  communications  the  sensitivity  of  information 
is  protected  by  a security  classification  system  which  prescribes 
the  safeguards  required.  The.  security  levels  of  military  messages 
are:  TOP  SECRET,  SECRET,  CONFIDENTIAL  and  UNCLASSIFIED.  If  a 
communications  system  is  required  to  handle  all  the  four  cate- 
gories of  traffic,  there  are  special  design  requirements  on  the 
switches  to  insure  that  the  security  safeguards  are  not  compro- 
mised. Until  a provable  secure  operating  system  can  be  realized 
to  provide  multi-level  security,  the  multiplicity  hf  security 
checks  that  must  be  performed  in  a communications  processor  place 
a severe  overhead  burden  on  processor  operation.  Security  is  a 
primary  reason  why  military  messages  are  not  sent  on  commercial 
networks.  Within  the  next  ten  years,  end-to-end  encryption  sys- 
tems will  be  perfected  which  use  remote  key  distribution  [l]. 

With  the  use  of  these  systems,  it  will  be  possible  to  send  the 
bulk  of  sensitive  military  traffic  on  commercial  networks. 

Availability  and  Precedence 

Among  military  messages,  some  messages  are  more  critical 
than  others,  and  must  be  transmitted  and  received  more  quickly 
than  the  less  critical  messages.  Thus  in  military  communications, 
a system  of  precedences  is  used  in  which  messages  have  a priority 
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in  the  order:  FLASH  OVERRIDE,  FLASH,  IMMEDIATE,  PRIORITY,  and 
ROUTINE.  In  a military  packet  switching  network,  every  packet 
transmitted  must  have  the  precedence  designation  in  the  header 
field.  These  precedence  protocols  are  generally  absent  in  non- 
military applications. 


During  a state  of  national  crisis  or  emergency,  public  tele- 
phone systems  become  overloaded  quickly.  Military  communication 
systems  must  be  designed  with  sufficient  excess  capacity  to  han- 
dle the  severe  load  demands  placed  upon  them  during  crisis  situ- 
ations. They  must  be  able  to  operate  even  when  major  switching 
centers  and  transmission  links  become  severed.  Availability  is 
thus  a primary  requirement  for  military  communication  systems 
and  one  which  dictates  in  some  instances  the  use  of  dedicated 
circuits,  rather  than  common  user  networks.  For  it  is  easy  to 
imagine  that  in  a severe  crisis  situation  even  military  common 
user  networks  can  get  flooded  with  high  precedence  traffic  and 
thus  become  unavailable. 


Interoperability 


Up  to  the  present,  little  attention  has  been  paid  to  the 
issue  of  interoperability  between  defense  data  networks.  Thus 
in  most  instances,  dedicated  networks  do  not  interface  with 
common-user  networks.  The  US  Department  of  Defense  po] icy  is  to 
employ  common-user  networks  whenever  feasible.  AUTODIN  II  is 
being  developed  in  order  to  stop  the  proliferation  of  specialized 
data  networks  for  specific  applications  such  as  logistics.  WIN, 
although  a dedicated  network  for  command  and  control,  was  devel- 
oped before  AUTODIN  II  was  approved,  and  it  will  be  subsumed  when 
AUTODIN  II  becomes  fully  operational.  It  should  be  mentioned 
here  that  although  AUTODIN  II  uses  an  early  version  of  the  inter- 
net protocol  TCP  developed  by  Cerf  and  Kahn  [2],  AUTODIN  II  can- 
not interoperate  with  networks  operating  with  the  X-25  protocol 
[3]. 


Interoperability  requirements  become  more  severe  in  a NATO 
environment.  The  NATO  Integrated  Communications  System  does  not 
at  present  interoperate  with  the  many  national  defense  communica- 
tion systems.  There  are  urgent  requirements  for  interoperability 
among  NATO  nations  that  are  not  met.  NATO  planning  for  interop- 
erability of  national  defense  communications  networks  should  be 
a task  of  the  highest  priority. 


3.  ARPANET,  AUTODIN  II  AND  WIN 


In  this  section  we  will  examine  briefly  the  features  of  the 
DoD  packet  switching  nets:  ARPANET,  AUTODIN  II  and  WIN  and  then 
discuss  certain  issues  associated  with  the  future  of  the  networks. 


ARPANET 


In  1968  the  Advanced  Research  Projects  Agency  (ARPA)  of  the 
U.S.  Department  of  Defense  began  implementation  of  a computer- 
communication  network  which  permits  the  interconnection  of  heter- 
ogeneous computers  at  geographically  distributed  centers  through- 
out the  United  States.  This  network  has  come  to  be  known  as  the 
ARPANET  [4],  and  has  grown  from  the  initial  four  node  configura- 
tion in  1969  to  over  forty  nodes  (including  satellite  nodes  in 
Hawaii,  Norway,  and  London)  at  present.  The  major  goal  of  ARPANET 
is  to  achieve  resource  sharing  among  the  network  users.  The  re- 
sources to  be  shared  include  not  only  programs,  but  also  unique 
facilities  such  as  the  powerful  ILLIAC  IV  computer  and  large 
global  weather  data  bases  that  are  economically  feasible  when 
widely  shared.  Today  the  ARPANET  provides  support  for  a large 
number  of  DoD  and  other  government  projects  with  an  operational 
network  of  taany  nodes  and  host  computers.  Responsibility  for  the 
operation  of  the  ARPANET  was  transferred  from  ARPA  to  the  Defense 
Communications  Agency  (DCA)  on  July  1,  1975. 


AUTODIN  II 


AUTODIN  (Automatic  Digital  Network)  II  is  a new  DoD  common- 
user  packet  switching  network  which  will  provide  the  capability 
of  transferring  information  between  DoD  data  processing  centers 
and  remote  user  terminals.  Initially  AUTODIN  II  will  consist  of 
eight  switching  centers  located  in  the  continental  US  which  are 
connected  by  56  KB  links.  Access  to  these  nodes  can  be  direct 
or  via  lower  speed  lines  connected  to  concentrators  and  multi- 
plexors. It  must  be  emphasized  that  the  AUTODIN  communications 
processors  are  high  speed,  high  capacity  devices  which  can  con- 
nect to  many  host  computers  rather  than  the  four  that  the  ARPANET 
IMPs  permit.  A 1976  estimate  of  the  potential  users  of  AUTODIN 
II  indicate  that  there  will  be  over  160  host  computers  and  over 
1300  terminals  connected  to  AUTODIN  II,  thus,  illustrating  the 
point  that  there  will  be  a far  greater  density  of  users/node  in 
AUTODIN  II  than  ARPANET.  Users  of  AUTODIN  II  will  include  mem- 
bers of  the  DoD  command  and  control,  intelligence,  and  logistics 
communities  as  well  as  environmental  services  and  Army,  Navy,  Air 
Force  management  information  systems.  AUT0D1N  II  will  be  design- 
ed with  provisions  for  security,  priority  control,  and  establish- 
ment of  close  communities  of  interest.  To  summarize,  AUTODIN  II 
is  a leased,  industrially  funded  packet  switching  common-user 
network  that  is  designed  to  a higher  level  of  reliability,  sur- 
vivability and  throughput  than  ARPANET. 

A contract  for  the  development  and  lease  of  AUTODIN  II  was 
awarded  to  a team  consisting  of  Western  Union,  Computer  Science 
Corporation  and  Ford  Aerospace  in  November  1976.  The  system  is 


Is<-  ‘ r > expected  to  be  in  an  initial  operational  phase  with  four  nodes 

by  late  1979.  One  node  per  month  will  be  added  after  completion 
of  the  operational  testing  period.  The  network  is  expected  to  be 
extended  to  Europe  and  the  Pacific  in  the  early  1980's. 


WIN 


li 


WIN  is  an  acronym  for  WWMCCS  intercomputer  Network.  WWMCCS 
is  an  acronym  for  World  Wide  Military  Command  and  Control  System, 


which  among  its  many  facilities,  includes  the  WWMCCS  ADP  (Auto- 
matic Data  Processing)  System.  [5]  The  WWMCCS  ADP  system  includes 
35  medium  and  large  scale  computer  systems  and  remote  terminals 
at  26  locations  around  the  world.  The  35  systems  are  intended 
to  function  as  an  integrated  worldwide  system  with  common  hard- 
ware: (Honeywell  6000  miniframes,  DATANET  355  front  ends,  716 

remote  minis,  VI?  7700  terminals,  etc);  common  system  (GCOS  III) 
and  applications  software,  data  bases,  and  centralized  management, 
support  and  planning. 


Up  to  1975,  these  WWMCCS  computers  were  not  connected  by  a 
computer  network.  In  1974-76  an  earlier  version  of  WIN  called 
PWIN  was  developed  as  a secure,  mini-version  of  ARPANET  which 
connects  six  WWMCCS  ADP  sites  together  for  command  and  control 
applications.  WIN  uses  modified  ARPANET  IMPs  as  its  communica- 
tions subnet  computer.  These  IMPs  are  interfaced  to  the  Honey- 
well 6000  host  computers  using  Honeywell  DATA-NET  355  front  end 
processors.  Remote  terminal  access  to  WIN  is  also  possible 
through  the  355 's.  Since  WIN  is  restricted  to  classified  command 
and  control  applications,  communications  security  is  provided  by 
KG- 34  cryptographic  devices.  These  devices  encrypt  and  decrypt 
all  information  sent  between  network  links  to  prevent  unauthorized 
access  to  the  classified  military  information  being  transmitted 
by  WIN  users,  all  of  whom  possess  top-secret  clearances.  Thus 
WIN  can  be  regarded  as  a secure  version  of  ARPANET. 


The  following  capabilities  of  WIN  are  key 


TELNET  - enables  the  user  to  access  PWIN  computers 
which  are  geographically  remote 


TELECONFERENCE  - enables  a teletype  conference  to 
be  conducted  among  users  at  different  WIN  sites 


SENDFILE  - enables  data  files  to  be  moved  between 
computers  at  various  WIN  sites 


WIN  presently  utilizes  dedicated  50  KB  lines.  It  is  anticipated 
that  it  will  utilize  the  new  DoD  packet  switching  network,  AUTODIN 
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II,  as  a backbone  network  when  AUTODIN  II  becomes  operational  in 


late  1979. 


The  Future  of  these  Networks 


It  is  difficult  to  predict  when  AUTODIN  II  will  become  fully 
operational.  When  it  does  achieve  operational  status,  however, 
military  users  of  ARPANET  can  switch  over  to  AUTODIN  II,  where 
they  can  operate  in  a secure  mode.  (Selected  ARPANET  traffic  can 
be  secured  but  at  considerable  expense) . WIN  will  be  subsumed 
by  AUTODIN  II.  Only  the  highest  level  WIN  protocols  will  remain 
since  WIN  users  will  represent  a close  community  of  users  within 
AUTODIN  II.  The  communications  functions  of  WIN  will  be  complete- 
ly taken  over  by  AUTODIN  II. 
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The  future  of  ARPANET  is  considerably  more  uncertain  than 
that  of  WIN.  ARPANET  is  still  considered  an  experimental  network 
that  both  the  research  community  and  the  military  users  share. 

If  the  military  users  are  all  rehomed  on  to  AUTODIN  II,  many  of 
the  research  users  can  go  onto  a commercial  packet  switching  net- 
work such  as  TELENET  [6].  However  networks  such  as  TELENET  are 
operational  and  not  experimental  nets  and  it  is  as  difficult  to 
change  the  transmission  protocols  on  these  networks  as  for  oper- 
ational military  networks  such  as  AUTODIN.  Thus  a special  subset 
of  ARPANET  users  will  require  the  continued  existence  of  ARPANET 
in  order  to  carry  out  their  research  in  such  areas  as  internetting, 
packet  satellite  and  packet  speech  protocols.  Because  of  the  di- 
verse community  it  serves,  it  is  difficult  to  imagine  that  ARPANET 
could  be  readily  subsumed  by  AUTODIN  II.  Some  alternatives  that 
are  presently  being  explored  are: 

1.  Leave  ARPANET  as  presently  constituted  and  gateway  it  to 
AUTODIN  II. 

2.  Arrange  for  gateway  connections  between  ARPANET  and  a public 
packet  switching  net. 

Much  research  needs  to  be  carried  out  on  access  control  and  net- 
work security  before  a public  packet  switching  network  and  AUTO- 
DIN II  can  be  connected  via  a gateway. 

With  such  issues  presently  under  discussion,  the  future  of 
ARPANET  is  unclear. 


4.  THE  INTEGRATED  AUTODIN  SYSTEM  ‘ — 

The  Integrated  AUTODIN  System  (IAS)  is  the  future  all-digital, 
wideband,  US  defense  communications  system  permitting  global  com- 
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munications  between  humans  in  either  voice  (secure  or  unsecure) 
or  record,  between  men  and  computers,  and  between  computers.  The 
near-term  architectural  objectives  of  IAS  include: 


1.  Functional  specifications  for  a common  family  of  AUTODIN  ter- 
minals ' 

2.  ARPANET  Transition 

3.  Integration  of  AUTODIN  I into  AUTODIN  II  ~ 

4.  Extension  of  AUTODIN  II  overseas 

The  far-term  architectural  objectives  of  IAS  include  a number  of 
research  and  development  tasks  such  as : 

1.  Development  of  packet  broadcast  satellite  techniques  [7]. 

2.  Development  of  end-to-end  encryption  and  other  network  secur- 
ity techniques. 

3.  Development  of  gateway  techniques. 

4.  Development  of  local  and  regional  access  nodes. 

Most  of  the  R & D tasks  are  expected  to  be  completed  by  1990,  when 
a candidate  architecture  for  the  future  IAS  will  be  considered. 

It  is  expected  that  the  IAS  will  be  heavily  dependent  upon  packet 
switching  techniques  and  that  AUTODIN  II  will  be  a major  compo- 
nent of  the  IAS. 
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